A 5 day practical networking course designed to familiarise students with Cisco IOS (version 12). The course details the key commands used to configure and secure Cisco routers and switches, and covers the CCNA syllabus - including wired and wireless LAN access.
Students will inter-connect networks by implementing static routes, distance-vector and link-state based dynamic routing protocols.
The devices will be configured to route traffic across LAN/VLAN//WAN boundaries, by encapsulating datagrams across serial data links using various WAN protocols, such as HDLC, Frame Relay, ISDN and PPP (with CHAP authentication). VLAN encapsulation/tagging will be via IEEE802.1Q/P.
Standard and Extended Access Control Lists will be configured and applied to router interfaces to filter traffic based on IP address and/or traffic type.
Students will configure static and dynamic NAT to route between private and public networks and cover the theory of Virtual Private Networks (VPN's)
Students will copy router configurations and IOS images to/from a TFTP Server. Privileged commands will be used to debug TCP/IP protocols to ensure proper operation of the routers. Students will also perform password recovery operations.
The course is primarily aimed at IP v4 but does give an overview of IP v6 addressing and covers migration from an IP v4 to an IP v6 network. Other protocols and technologies (VPN's / Wireless) may be demonstrated if time permits.
Course can be customised to precise requirements of customer.
Audience:
This course is suitable for anyone looking for a basic understanding of internetworking with Cisco devices and covers the CCNA syllabus.
Course is approximately 50% practical
Objectives:
At the end of this course the student will be able to configure Cisco routers to:
Inter-connect networks using static routes
Inter-connect networks using RIP, OSPF and EIGRP.
Route between VLAN's.
Encapsulate datagrams using PPP
Apply Standard and Extended Access Control Lists
Encapsulate datagrams using HDLC
Encapsulate datagrams using Frame Relay
Configure Frame Relay Switching.
Support ISDN dial backup.
Route between public and private networks using NAT.
At the end of this course the student will be able to configure Cisco switches to:
Run Spanning Tree Protocol.
Support VLANs.
Connect switches via VLAN Trunks.
Practical Exercises:
Lab Exercise 1: Connectivity and Testing
Lab Exercise 2: Checking ARP Cache
Lab Exercise 3: Traceroute
Lab Exercise 4: Telnet into a Router
Lab Exercise 5: Configuring routers using TFTP
Lab Exercise 6: Configuration and Connectivity using RIP
Lab Exercise 7: Network Failure
Lab Exercise 8: Running other Routing Protocols
Lab Exercise 9: Spanning Tree Protocol
Lab Exercise 10: VLAN Exercise
Lab Exercise 11: Inter-VLAN Routing.
Lab Exercise 12: Classful & Classless Routing - Subnetting at Byte Boundaries
Lab Exercise 13: Access Lists
Lab Exercise 14: PPP Encapsulation
Lab Exercise 15: Frame Relay Encapsulation and ISDN dial backup.
Lab Exercise 16: Static and Dynamic NAT Configuration.

A 4 day instructor-led practical course designed to familiarise delegates with the Cisco ASA Firewall CLI and ASDM. The course details the key commands used to configure and secure networks using the ASA Firewall with v8 of the operating system and version 6 of the ASDM.
Delegates will configure the ASA using the console port, TFTP server, telnet and SSH using local and RADIUS authentication. The device will be configured to utilise Syslog and SNMP.
ASA Firewalls will also be configured to use Access-Lists, Network Address Translation and VPN's utilising IPSec protocols. The course will cover the theory of Public/Private Keys, shared secret keys and their use in forming Site to site VPN's between ASA Firewalls using IKE and IPSec. Students will configure the units to create site to site VPN's, remote access VPN's using the Cisco Secure VPN Client and Web VPN's. The course will cover the theory of failover and delegates will configure Active/Standby failover on the ASA.
Privileged commands and protocol analyser traces will be used, where necessary, to debug protocols and ensure proper operation of the ASA Firewall. Students will also perform password recovery operations.
This course will involve interfacing the ASA with other network equipment, such as routers and switches, as would be expected in a network environment.
Audience:
Course is suitable for anyone involved in ASA firewall configuration and network security
Course is approximately 50% practical
Objectives:
At the end of this course the student will be able to configure ASA Firewalls to:
Allow configuration via console port, telnet and SSH
Copy configurations and upgrade OS image.
Authenticate users using RADIUS and local authentication.
Act as a DHCP Server, Client and Relay.
Operate as a Routed or Transparent Firewall.
Operate in Failover mode.
Support VLANs.
Run routing protocols (OSPF and RIP) and exchange routing information with Cisco routers.
Support Access Control Lists and content filtering.
Support Object Grouping.
Establish Internet connections using NAT and PAT.
Setup site to site VPN's using IKE and IPSec.
Setup Remote Access VPN's using Cisco secure VPN client.
Setup Web VPN's
Log access-list activity using a syslog server.
Send traps to an SNMP Server.
Password recovery
Practical Exercises
Lab Exercise 1: Basic Configuration of Cisco ASA.
Lab Exercise 2: Configure support for VLANs on ASA.
Lab Exercise 3: Connectivity via Telnet and Local/RADIUS authentication.
Lab Exercise 4: Configure Static and Dynamic routing on ASA.
Lab Exercise 5: Filter traffic using Access Control Lists.
Lab Exercise 6: Configure NAT on ASA.
Lab Exercise 7: Configure VPN's on ASA.
Lab Exercise 8: Configure Active/Standby Failover on ASA/Pix.
Lab Exercise 9: Password Recovery on Cisco ASA.
Equipment Used in Practical Exercises:
4 Cisco ASA 5505 Firewalls running v8 of the CLI and capable of Active/Standby Failover. Pix 515E firewalls running v8 of the CLI, Cisco routers, switches and hubs as required.

This one day workshop covers the configuration and operation of the RADIUS protocol in the authentication, authorisation and accounting of accessing the management software of Cisco IOS devices. The RADIUS server is Network Policy Server (NPS) in Windows 2008 R2.
Audience:
Suitable for network planners, engineers or anyone interested in RADIUS operation with Cisco IOS Devices and NPS.
Workshop is almost all practical. If extended to 2 days it will be approximately 50% practical.
Objectives:
Review the operation of RADIUS AAA process.
Configure Cisco IOS devices to use RADIUS for access to the management software.
Configure connection request and network policies on NPS.
Configure Windows users/groups to authorise the RADIUS requests.
Test successful operation of RADIUS using NPS.
Equipment used in Practical Sessions:
Cisco routers and/or switches running v12 of IOS. Windows 2008 R2 server running Network Policy Server (NPS).

Suitable for network planners, engineers or anyone interested in TACACS+ operation with Cisco IOS devices.
Course is almost entirely practical if one day. If extended to 2 days due to lack of pre-reqs it will be around 50% practical.
Objectives
Review the operation of TACACS+ AAA process.
Configure Cisco IOS devices to use TACACS+ for access to the management software.
Configure Windows users/groups to authorise the TACACS+ requests.
Configure TACACS+ server files for proper operation.
Test successful operation of TACACS+.
Equipment used in Practical Sessions:
Cisco routers and/or switches running v12 of IOS. Windows 2008 R2 server running TACACS.net software.

This one day workshop covers the configuration and operation of the IEEE802.1x protocol in the authentication and authorisation of a wired Windows 7 supplicant. The authenticator is a Cisco Switch and the server is Windows NPS running on Windows 2008 R2 server, operating as a Certification Authority (CA). The EAP protocol is Protected EAP (PEAP) and a successful request will be allocated a VLAN on the switch via RADIUS attributes received from the server following successful authentication. The procedure for a wired supplicant is almost identical to that of a wireless supplicant.
Audience:
Suitable for network planners, engineers or anyone interested in operation of PEAP with Cisco IOS Devices and NPS.
Objectives
Review the operation of IEEE802.1x process.
Configure Cisco Switch to use IEEE802.1x and RADIUS.
Configure Cisco Switch to authorise VLAN assignment via RADIUS attributes from server.
Configure Windows 7 supplicant for dot1x authentication and install certificate from CA as a trusted computer certificate.
Configure connection request and network policies on NPS to authenticate and to pass VLAN assignment to switch.
Configure Windows users/groups on Windows 2008 R2 server to enable NPS authentication.
Configure Windows 2008 R2 server as a DHCP server.
Configure ip helper addresses and inter-VLAN routing on Cisco L3 switch.
Test successful PEAP authentication and PING PCs in different VLANs.
Equipment used in Practical Sessions:
Cisco L2 and L3 switches running v12 of IOS. Windows 2008 R2 server running Network Policy Server (NPS).

NobleProg® Limited 2004 - 2016 All Rights Reserved
This site is operated by the NobleProg franchisor . If you interested in opening a franchise in your country, please visit http://training-franchise.com for more information.

NobleProg® is a registered trade mark of NobleProg Limited and/or its affiliates.